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CLAIMS: 

1 . (Currently amended) A communication authorization method, comprising the 

a third party server receiving a request for access information to access content; 

generating the access information and session rights to access the desired content 
from a first application server; 

generating authentication of the access information and session rights using a first 
service ticket to the first application server, wherein the first service ticket is obtained 
from a key distribution center (KDC) ; and 

sending the access information , session rights and authentication to a client, 
whereby the client presents the access information , session rights and authentication to 
the first application server to be authorized to receive the desired content from the first 
application server. 



2. (Canceled) 



3. (Currently amended) The method as claimed in claim 1 , whoroin the stop of 
comprising: 

encrypting at least a portion of the session rights using a third party server service 
session key for the first application server. 



4. (Cancelled) 
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5. (Presently amended) The method as claimed in claim 4 \, further comprising 
the steps of : 

requesting a ticket granting ticket (TGT ticket); 
receiving a TGT ticket; 

requesting the third first party server service ticket for the first application server; 

and 

receiving the third first party server service ticket for the first application server. 

6. (Presently amended) The method as claimed in claim 1, further comprising 
tho stops of : 

the first application server receiving a key request including the access 
information and authentication; 

extracting the access information and authentication; 

verifying the authentication of the access information using the first service ticket, 
and client authorization; and 

issuing a key reply if the authentication of the access information and client 
authorization are verifiedvi 

the KDC receiving a second service ticket request from a client for the application 

server; 

issuing a second service ticket for the application server; and 
the step of the application server receiving a key request from a client wherein the 
key request includes the second service ticket . 
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7. (Presently amended) The method as claimed in claim 6, further comprising the 

a client generating a key request including the access information and the 

authentication; 

sending the key request to the first application server; and 

receiving the key reply (KEY_REP) if the authentication of the access 

information and client authorization are verified by the first application server. 

8. (Presently amended) A method for verifying authorization for a client to gain 
access to content and/or services, comprising the steps of : 

receiving a key request from a client; 

extracting third party server access informatio n, session rights and third party 
server authentication from the key request; 

verifying an authentication of the third party access information , session rights 
and a client authorization; and 

issuing a key reply if the authentication of the third party access information 
session rights and the client authorization are verified; 

the KDC receiving a second service ticket request from a client for the application 

server; 

issuing a second service ticket for the application server; and 
the step of the application server receiving a key request from a client wherein the 
key request includes the second service ticket . 
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9. (Presently amended) The method as claimed in claim 8, further comprising: 
the step of 

authenticating the third party server access information using the third party 
server authentication. 

10. (Presently amended) The method as claimed in claim 9, wherein the step-ef 
authenticating includes extracting a first service ticket and authenticating the third party 
server access information using the first service ticket. 

1 1 . (Presently amended) The method as claimed in claim 8, wherein the stop of 
extracting the third party server authentication, further comprising the steps of extracting 
a session key from the first party ticket included in the key request; and the step of 
authenticating the access information includes verifying a third party server signature 
using the session key. 

12. (Currently amended) The method as claimed in claim 1 1 , wherein the step 
of extracting the session key includes decrypting at least a portion of the first party ticket 
included in the key request using an the first application server service key and extracting 
the session key. 

13. (Presently amended) The method as claimed in claim & 5, further comprising 
the steps of : 



Doc. No.: 3388856 



5 



App. Ser.No.: 10/067,610 
Atty. Doc. No.: D02684 

the third party server receiving a request for the access information to access 

content; 

generating the third party server access information to access the desired content 
from a first application server; and 

generating the third party server authentication of the access information. 

14. (Presently amended) The method as claimed in claim 13, wherein the step of 
generating the third party server authentication includes incorporating a third first party 
server service ticket for the first application server. 

15. (Presently amended) The method as claimed in claim 14, wherein the stop of 
generating the authentication includes generating a signature utilizing a session key of the 
thifd first party server service ticket. 

16. (Cancelled) 

17. (Presently amended) A method for providing secure communication when 
distributing services, comprising the steps of : 

a third party server receiving a selection for services; 
issuing access information and session rights for the services; 
issuing authentication of the access information and the session rights ; 
an application server receiving a key request from a client; 
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verifying an authentication of the access information , session rights and a client 
authorization utilizing, at least in part, a first service ticket; and 

issuing a key reply to a client if the authentication of the access information^ 
session rights and the client authorization are verified. 

18. (Presently amended) The method as claimed in claim 17, further comprising 
the steps of : 

a KDC receiving a first service ticket request from a third party server for the first 
application server; 

the KDC issuing the first service ticket to the third party server for the first 
application server; and 

the steps of the third party server issuing access information and authentication 
including generating the access information and authentication using the first service 
ticket. 

19. (Presently amended) The method as claimed in claim 17, further comprising 
the steps of : 

the KDC receiving a second service ticket request from a client for the first 

application server; 

issuing a second service ticket for the first application server; and 

the step of the application server receiving a key request from a client wherein the 

key request includes the second service ticket. 
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20. (Presently amended) The method as claimed in claim 17, wherein: the step of 

the application server verifying the authentication of the access information includes: 

extracting the first service ticket; 

decrypting the first service ticket; 

extracting a session key from the first service ticket; 

generating a signature using the session key; and 

verifying the signature over the access information with the session key. 
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